Security Bulletin

Kea Hook Library Packages Kea Hooks are separate libraries that can be optionally installed with Kea to provide additional functionality. Some of the Kea hooks are licensed under the MPL 2.0 open source license, and are packaged with the open source...

Today, CISA, in collaboration with U.S. and international partners, published a joint fact sheet, Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity. This fact sheet provides information and mitigations associated with cyber...

CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2023-7028 GitLab Community and Enterprise Editions Improper Access Control Vulnerability These types of vulnerabilities...

CERT Coordination Center (CERT/CC) has released information on a vulnerability in R programming language implementations ( CVE-2024-27322). A cyber threat actor could exploit this vulnerability to take control of an affected system. Users and...

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

MOVEit drove a big chunk of the increase, but human vulnerability to social engineering and failure to patch known bugs led to a doubling of breaches since 2023, said Verizon Business.

I reviewed a filename I see regularly uploaded to my DShield sensor eyshcjdmzg that have been seeing since the 1 October 2023 which has multiple hashes and has been labeled as trojan.xorddos/ddos. These various files have only been uploaded to my...

As the social media giant celebrates its two-decade anniversary, privacy experts reflect on how it changed the way the world shares information.

ISC offers binary packages for BIND 9. Versions supported Please note that we only provide packages for currently supported versions of the operating systems. When we release a new version of BIND, we evaluate the OSes we are supporting. We add...

More than 80 stores across Western Canada are affected by the temporary closures.

The purported metadata for each these containers had embedded links to malicious files.

London Drugs offered no details about the nature of the incident, nor when its pharmacies would be functioning normally again.